Cybersecurity Compliance Analyst

Overview

LEIDOS has an excellent opportunity for an experienced Cybersecurity Compliance Analyst. This position supports a Department of Defense (DoD) organization, US EUCOM, located OCONUS in Stuttgart, Germany. This is a temporary position lasting 4+ months and can be done remotely.

We are seeking a motivated candidate who can present products and ideas in a business-like manner, thrive in a dynamic, fast-paced environment, and effectively interact with both client managers and system users.

Key Responsibilities

• Conduct cybersecurity program/system security status assessments.
• Support the development of Cybersecurity programs, including policies and procedures in accordance with DoDI 8500.01 Risk Management Framework.
• Track organizational cybersecurity compliance and communicate remediation needs.
• Track remediation through completion and ensure cybersecurity documentation is accurate.
• Perform comprehensive assessments of management, operational, and technical security controls.
• Prepare for, assist with, and monitor various cyber assessments (SAV, CCORI, NSA Red/Blue Team, vulnerability scans, A&A reviews).
• Develop technical standards (SOP/TTPs, implementation instructions) for security processes.
• Collaborate with defensive cybersecurity operation (DCO) teams on incident response.
• Interact with customers, IT staff, and military officials to achieve cybersecurity objectives.
• Conduct Risk Assessments, determine operational risk, and provide recommendations.
• Review network architecture diagrams for cybersecurity compliance based on network security fundamentals.
• Assess and authorize software and hardware across multiple enterprise networks.

Required Policy Implementation Experience

• DODI 8510.01 Risk Management Framework (RMF) for DoD Information Technology
• CJCSI 6510.01F Assurance (IA) and Computer Network Defense (CND)
• CNSSI 1253 Security Categorization and Control Selection for National Security Systems
• CJCSM 6510.01B Cyber Incident Handling Program
• DODD 8140.01 Cyberspace Workforce Management
• CJCSI6211.02D Defense Information Systems Network (DISN): Policy and Responsibilities
• JFHQ-DODIN TASKORDS, OPORDS, WARNORDS and GENADMINS

Required Qualifications

• At least 3 years of supervisory and technical management experience in Cybersecurity.
• Currently hold an adjudicated Secret Clearance and qualify for a TS/SCI clearance.
• BA/BS + 8 years recent specialized or AA/AS +10 years recent specialized or a major cert + 12 years recent specialized or 14 years of recent specialized experience.
• DoD 8570 IAM III and IAT II Baseline Certification.
• Knowledge of DoD IT RMF, USCYBERCOM, and JFHQ-DoDIN.
• Advanced Proficiency in Microsoft Office Suite products (Word, Excel, PowerPoint).

Preferred Qualifications

• Microsoft Azure Certification (Server Administration).
• Cisco Certified Network / CyberOps Associate.
• RedHat Certification Associate.
• Proficiency with Microsoft SCCM and/or other automatic reporting tools.
• Proficiency with PowerBI.
• Experience with ElasticSearch and Splunk.
• Adaptable to changing circumstances and operational needs.
• Understanding of Department of Defense Military standards.
• Experience with DoD IT security requirements.
• Experience managing asset accuracy to Critical Success Factors (CSF).
• DoD 8570.01 Certification Compliance (CISSP, ISSEP, CISM).

Key skills/competency

• Cybersecurity Compliance
• Risk Management Framework (RMF)
• DoD Policies
• Security Control Assessment
• Incident Response
• Network Security
• Policy Development
• Vulnerability Scans
• Technical Documentation
• Microsoft Office Suite